PSRule.Rules.Azure icon indicating copy to clipboard operation
PSRule.Rules.Azure copied to clipboard

Published 20 hours ago verified publisher icon Azure

Metadata

Rules to validate Azure resources and infrastructure as code (IaC) using PSRule.

Results 236 PSRule.Rules.Azure issues
Sort by recently updated
recently updated
newest added

[BUG] Custom policy appears to be incorrectly converted by Export-AzPolicyAssignmentRuleData

1 comment

### Existing rule _No response_ ### Description of the issue It appears that `Export-AzPolicyAssignmentRuleData` inverts the behavior of our custom policy. Custom policy: ```custom-policy.json { "properties": { "displayName": "some-tag-policy -...

ThijmenDam avatar ThijmenDam

.NET
feature: policy-as-rules

[BUG] False positives for rule AZR-000279?

3 comment

### Existing rule Azure.Deployment.OutputSecretValue (AZR-000279) ### Description of the issue Perhaps I am missing something, but it seems that AZR-000279 is incorrectly flagged in the following situation. Our team implements...

ThijmenDam avatar ThijmenDam

feature: bicep-language

[RULE] Check service bus replica locations are within allowed regions

### Existing rule _No response_ ### Suggested rule When service bus replication is configured any configured locations should be in the allowed location list if configured. ### Pillar Security ###...

BernieWhite avatar BernieWhite

pillar: security
rule: service-bus

[RULE] Check that additional fleet locations are within allow regions

### Existing rule _No response_ ### Suggested rule Any configured additional locations of fleet resources should be within allowed locations if configured. ### Pillar Security ### Additional context _No response_

BernieWhite avatar BernieWhite

pillar: security
rule: fleet

[RULE] Promote Azure.VNG.MaintenanceConfig to GA

### Existing rule Azure.VNG.MaintenanceConfig ### Suggested rule Promote `Azure.VNG.MaintenanceConfig` to GA rule set because it is no longer in preview. ### Pillar Reliability ### Additional context _No response_

BernieWhite avatar BernieWhite

rule: network
pillar: reliability

[RULE] Check if Entra auth is enabled for MongoDB vCore clusters

### Existing rule _No response_ ### Suggested rule Now that Entra ID auth is available for use in MongoDB vCore clusters (in preview) for `Microsoft.DocumentDB/mongoClusters`, this should be used instead...

BernieWhite avatar BernieWhite

rule: cosmos
lifecycle: preview
pillar: security

[RULE] Event Grid namespace requires using TLS 1.2 or later

2 comment

### Existing rule _No response_ ### Suggested rule Add a rule to the security baseline to require TLS 1.2 or later for Event Grid namespace ### Pillar None ### Additional...

sebassem avatar sebassem

help wanted
good first issue
rule: event-grid
pillar: security
avm

[RULE] Use pinned script dependencies

### Existing rule _No response_ ### Suggested rule When pulling in external files that will be executed such as scripts a pinned URL should be used, to prevent the file...

BernieWhite avatar BernieWhite

rule: deployment
rule: automation-account
pillar: security

[RULE] Check for public key usage on Linux fleet VM profiles

### Existing rule Azure.VM.PublicKey ### Suggested rule Add support for `Microsoft.AzureFleet/fleets` with a new rule similar to `Azure.VM.PublicKey`. ### Pillar Security ### Additional context https://learn.microsoft.com/en-us/azure/templates/microsoft.azurefleet/fleets?pivots=deployment-language-bicep

BernieWhite avatar BernieWhite

pillar: security
rule: fleet

[RULE] Check for cases when a sensitive value is set on a non-secure property

### Existing rule _No response_ ### Suggested rule Check for cases when a sensitive value is set on a non-secure property. ### Pillar Security ### Additional context _No response_

BernieWhite avatar BernieWhite

rule: deployment
pillar: security

Metadata

373
Stars
80
Forks
Watchers

Owner

verified publisher icon Azure

Metadata

Rules to validate Azure resources and infrastructure as code (IaC) using PSRule.

Back